Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
File: UlG0CzMZisWh7fUP_whigWAzXf0.mft (raw, json)
Hash identifier: CeOwR9i0/tRTsr21ARixuO0CiIuEFwB6MA2RkwoIbIE=
Subject key identifier: 43:EE:00:D9:0E:70:71:B6:45:8F:B4:3A:08:E8:B3:F2:57:90:0C:13
Authority key identifier: 52:51:B4:0B:33:19:8A:C5:A1:ED:F5:0F:FF:08:62:81:60:33:5D:FD
Certificate issuer: /CN=5251b40b33198ac5a1edf50fff08628160335dfd
Certificate serial: 019E21A43F1BBACB1941D0ABF5AFD2C3434C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
Manifest number: 1807
Signing time: Wed 13 May 2026 14:01:12 +0000
Manifest this update: Wed 13 May 2026 14:01:12 +0000
Manifest next update: Thu 14 May 2026 14:01:12 +0000
Files and hashes: 1: 1nMpDLYuPfBQOmpt5pYO3-mYgaM.roa (hash: qFQcqHmma1oo39YlL2XWPJ/NbS5gxpG0P6PjvZW9cyM=)
2: UlG0CzMZisWh7fUP_whigWAzXf0.crl (hash: 42aRCdXAKUWQ8IHH7EuXULEveHL0VvVYl6O+HQPrgio=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 14:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:21:a4:3f:1b:ba:cb:19:41:d0:ab:f5:af:d2:c3:43:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5251b40b33198ac5a1edf50fff08628160335dfd
Validity
Not Before: May 13 14:01:12 2026 GMT
Not After : May 14 14:01:12 2026 GMT
Subject: CN=43ee00d90e7071b6458fb43a08e8b3f257900c13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:85:ae:af:ac:17:97:6b:12:e1:bc:de:be:2d:
1d:96:53:67:be:40:a3:4f:31:d2:47:68:0a:af:e2:
8b:84:87:f0:a9:b6:80:99:26:e9:c5:9d:e8:d4:7c:
fd:13:d1:fc:e6:59:8f:13:2a:ee:5f:36:ad:35:05:
3b:6d:74:6b:40:ce:95:e7:22:5b:eb:12:08:55:42:
fa:6f:34:b7:1e:fe:af:1c:73:86:a9:bd:01:ba:8b:
68:d8:ed:02:9a:6e:75:e7:6c:1e:ca:7b:e1:43:44:
b0:60:b9:51:b5:69:10:78:57:ca:a8:40:53:1f:31:
5c:b6:e7:60:93:fa:7e:57:62:bd:8a:99:fb:cd:d1:
21:8f:ce:5f:e7:de:88:34:c5:f1:00:ac:dd:d7:cc:
51:26:76:98:c3:6a:88:69:99:93:6e:6a:6f:d0:1c:
e7:15:6a:8e:9c:38:db:29:1f:ae:14:f9:3b:db:0c:
bf:74:fe:4b:51:3a:2d:9b:27:11:97:07:80:7b:68:
2f:26:99:7d:93:de:94:ac:2b:fd:3f:d2:24:33:d4:
3d:df:4e:83:54:58:b6:47:1e:da:d7:cf:58:fe:ea:
4f:17:c4:06:70:a4:2f:18:21:b8:f3:cf:73:dc:20:
e2:17:ad:a0:23:a9:1c:47:83:6b:34:4c:06:1e:03:
85:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:EE:00:D9:0E:70:71:B6:45:8F:B4:3A:08:E8:B3:F2:57:90:0C:13
X509v3 Authority Key Identifier:
keyid:52:51:B4:0B:33:19:8A:C5:A1:ED:F5:0F:FF:08:62:81:60:33:5D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:2d:7c:1d:c2:bf:c1:b2:62:45:9a:cb:1b:27:de:02:4e:28:
4a:e5:57:58:45:f1:c8:0b:d0:71:a7:39:f2:98:fc:5e:9c:ad:
d5:60:d2:a2:a2:9f:32:1d:a3:00:14:e7:80:46:a9:36:85:ac:
ea:ae:46:b3:b8:21:db:1b:3b:c5:03:5c:db:e7:da:07:5a:e8:
a7:2d:28:d9:42:fa:1a:b9:70:91:43:71:b2:10:89:de:45:82:
22:c8:06:0b:92:e7:f1:17:fb:2f:71:a1:4d:29:7a:53:09:0f:
64:62:74:a7:6c:77:9c:ea:e3:c5:3c:75:6b:eb:5a:d9:f0:f2:
b9:7f:0d:ac:d3:c0:06:3e:52:7d:3b:68:59:29:ab:c9:34:dc:
e9:8b:88:ee:c8:df:02:7f:eb:3b:39:2c:5d:02:a3:eb:01:4b:
91:85:39:d4:25:11:ab:85:80:10:7b:23:77:53:b8:ef:63:b0:
df:f4:cf:9d:6a:26:8b:0f:32:c0:e2:0b:24:7b:62:5e:55:10:
25:aa:a6:69:ed:09:8d:ca:0d:45:12:61:47:62:8f:f9:15:38:
8d:bc:f6:32:20:cc:a2:da:c4:f7:7f:94:11:96:91:b7:9e:de:
1e:7c:9a:0c:cd:72:53:17:67:07:c5:8c:fb:d8:79:50:4c:d1:
ba:7e:4d:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 17:49:58 2026 by rpki-client